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[57] ABSTRACT 

One or more user accessible switches are provided by 
which the authorized user may fully or partially limit 
the computer's access to one or more of its peripheral 
devices. The switch inhibits power or control lines to 
the peripheral device, or enables the programming of 
access limits to the peripheral device, in a manner 
which cannot be overridden by the computer. This 
added level of control allows the user to control the 
computer's activities so that access to these peripheral 
devices is allowed only under secure conditions, so as to 
preclude alteration or destruction of data by unautho- 
rized users or computer viruses. Methods are disclosed 
by which the switches can render peripheral devices 
totally inactive, or made to be temporarily read-only, 
write-only, or write-once in order to implement a num- 
ber or security protocols for single or multi-user envi- 
ronments. 

20 Claims, 1 Drawing Sheet 
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known virus programs or virus-like activities. The 

METHOD FOR LIMITING COMPUTER ACCESS major shortcoming of these computer security pro- 

TO PERIPHERAL DEVICES grams is that they must operate within the computer's 

■ working memory space, its RAM. This means the secu- 

This application is a continuation of patent Ser. No. 5 rity software is susceptible to other forms of software 

07/755,866, filed Sep. 6, 1991, now abandoned. which can defeat the programs security measures. 

BACKGROUND — FIELD OF INVENTION ^ d**""* ^vantage of the present invention is that 

it is a hardware security device which cannot be by- 

This invention relates to computer security measures passed or defeated by software or keyboard program- 

and to the prevention of unauthorized reading or alter- 10 mmg. 

ing of computer data by individuals or programs operat- Another advantage of the present invention is that it 

mg on a computer. Specifically, this invention describes would ^i ow ^ com puter to be booted from a floppy 

a means and process by which the authorized user of a and used as a floppy disk system, by either totally or 

computer can protect data and programs stored in pe- par tially inhibiting the hard drive. This feature may be 

ripheral devices, such as mass storage media, from alter- 15 of s ^ iatmt ^ m mu lti-user situations, 

ation or deletion by mahcjous person^ or computer For 1C) b a home environmentj a father could 

virus programs, or accidente initiated by unskilled lock om ^ harddrive so ^ to ^ ^ children t0 

persons. This end is achieved by providing the autho- boot ^ ter ^ mn from a 

rued user with a switch whereby the user can com- « ^ infected fl ^sk Hsk / 

pleteiy or partially disable the peripheral device with- 20 . w . ^ ^ d /^ on or damage any of his business 

out disruptmg the operauon of the computer or other m £ h ^ 

peripherals. Alternatively, the switch may disable write ™ ^ ^ 1VC< 

TccL to the peripheral device, such as a widely used " * ^ I ^T*' ** ^ ™T 

computer harddrive, but allow the device to be read. ? on ? Qui ? ,^ USed 11 t ° m£ *t ^ ™ S ^ 

This invention is particularly useful in multi-user 25 read ^ * hus ^ owm S ™ d ~ 

environments, such asthose in a university computer sar + y data ^ d P">*™? *e hard dnve but block 

lab, wherein only a computer supervisor is authorized °? ^ attein P ts ^ t0 , * e ^ tove > thus forcm S 

to add programs and data to a mass storage peripheral ^ 8tod ?? t * reated mes and documents to be stored on 

device and other users are authorized only to read pro- removable floppy diskettes. Alternatively, this process 

grams and data from the storage device. In this exam- 30 could * un P lemented t0 P rovide read ^ access t0 a 

pie, the computer supervisor would have a key with protected portion of the harddrive which contains the 

which he could gain access to write new information executable programs and allow write access only to an 

onto a harddrive and then could "lock out" write access unprotected portion of the harddrive dedicated to data 

so that students would be unable to accidentally or storage. 

maliciously load a "virus" program onto the computer 35 SUMMARY OF INVENTION 
system. 

This invention is also useful for persons who desire to ^ object, advantages, and features of the present 

evaluate new software but are afraid that by doing so invention are: 

they will be exposing their computer system to infection ( a ) t0 provide a computer user with a method for 

with a computer virus. By locking out write access to 40 protecting a computer's security software from 

their computer's harddrive, the system is "safe" and the probing, alteration, bypass, or deletion; 

suspect program can be run without risk of it causing an (°) t0 provide a computer user with a method for 

infection which may later cause loss or disruption of protecting a computer's mass storage media from 

programs and data, corruption by an unauthorized user or computer 

By providing complete user control over a comput- 45 "virus"; 

ei^s access to its peripheral devices, this invention al- ( c ) t0 provide user accessible switches by which the 

lows the user to implement greater security precautions can restrict the computer's access to all or 

against unauthorized programs or users. These options portions of computer's peripheral devices, 

include limiting read and write access to the peripheral (d) to provide an alarm means to notify users of an 

device, and the ability to configure the peripheral de- 50 unauthorized attempt to write to a computer's pe- 

vice so as to make all or portions of the device appear to ripheral devices, wherein such an attempt may 

the computer as a read-only, write-only, or write-once indicate that a computer virus-like activity is taking 

peripheral device. place. 

J _ . . These and other objects are accomplished in accor- 

Background— Description of Prior Art 55 dance ^ th ^ present mve ntion by providing one or 

Protecting computer data and programs from unau- more user activated switches, which may be of a key- 
thorized copying, destruction, or alteration is a major locking type, which- totally or partially disable the corn- 
concern for governmental agencies, businesses, educa- putei^s access to peripheral devices such as mass storage 
tional institutions, and individual users. In addition to media or network communications, 
protecting valuable data from spies or malicious pro- 60 nFSrRTPTinN of or awtn^ 
grammers, there is a need to protect data from com- BRIEF DESCRIPTION OF DRAWINGS 
puter "virus" programs which can infect a system and FIG. 1 is a schematic drawing of a power intercep- 
cause damage at some later date. tion circuit between a host computer's CPU and a pe- 

Numerous computer security programs have been ripheral mass storage device, 

written to provide a large variety of features to protect 65 FIG. 2 is a schematic drawing of electronic circuit 

computer data. These include such features as password which can block all write accesses to a typical personal 

protection, restricted access to specified files, limited computer's harddrive whenever selected to do so by a 

menu options, checksum verification, and scanning for user activated switch. 
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FIG. 3 is a block drawing which shows the relation- storage of configuration data which would fully or 

ship between a peripheral device such as a harddrive, partially disable the CPU's access to portions of the 

the peripheral's controller card, and access switches peripheral device. 

which limit the computer's access to the peripheral 6) activate an electronic signal which would be de- 
device, and the computer's central processing unit. 5 tected by the CPU and would enable sections of 



DESCRIPTION OF INVENTION 



the BIOS code stored in firmware whereby this 
BIOS code would fully or partially limit access to 
For the purpose of this discussion, peripheral devices at least on peripheral device, 

shall mean any device external to the central processing The following discussion describes these various em- 
unit (CPU) of a computer, including mass storage media 10 bodiments in greater detail, 
devices such as hard disk drives and their controllers, T?\jmnnT\jrcwr 
computer network interface cards, and other I/O de- EMBODIMENT 1 

vices. The term controller card refers to the electronics The simplest, but least selective, means for achieving 
associated with the peripheral device which interface the ends described above is shown in FIG. 1. This draw- 
the device with the host computer, interpret the host 15 ing shows a means for intercepting and interrupting the 
computer's commands, and controls the peripheral de- power to a typical harddrive peripheral device in a 
vices activities, this controller card circuitry may be common variety of personal computers. In this typical 
embedded in the peripheral device or remotely situated example, the harddrive receives its power from a four 
and in communication with the peripheral device. The pin connector to the computer's central power supply, 
term computer virus, or simply virus, refers to any 20 Normally, the harddrive is powered on whenever the 
potentially destructive computer program which may computer is on, and powered off whenever the corn- 
cause malfunction of the computer, corruption of files, puter is off. If, however, the harddrive is connected to 
loss of data, or other unwanted and unexpected results. connector 51 in FIG. 1, and the computer's central 
The term unwanted memory loss refers to the condition power supply output is connected to connector 52, then 
of damaged, lost, or altered memory locations due to 25 the user can selectively powerofF the harddrive by 
computer virus activity or accidental or malicious dam- switching switch 53 to the disconnected position with- 
age caused by person with access to the computer. out disrupting the computer's normal operation. As 

This invention describes a means and process by long as switch 53 is in the disconnected position, the 
which to disable the computer's access to all or part of computer can be used, even with computer virus in- 
a computer's memory system or associated peripherals, 30 fected software, without risk of infecting or damaging 
so as to protect the computer from computer virus information stored on the harddrive. 
infections when using new or untested software. In Switch 53 may be of a key locking type which is 
addition, this invention can prevent erasure, alteration, positioned in some accessible location so that the user 
or other damage to files stored on a harddrive or net- can conveniently reach it. 

work due to accidental, negligent, or malicious behav- 35 In a typical application, a parent who uses a home 
ior of persons with access to the computer. computer for business applications may use this inven- 

The present invention achieves these ends by totally tion to turn off the harddrive and lock it out so that 
or partially disabling access to peripheral devices which children may experiment with the computer and oper- 
may be subject to unwanted memory loss, typically ate new, unusual, and highly suspect programs, without 
these are mass storage media devices such as a hard- 40 risk of damaging important business information, 
drive. Typically, the disabling of the peripheral device In another typical application, a computer user who 
is executed by the user operating a switch, which may enjoys experimenting with new software traded among 
be of a keylocking type, which fully or partially disables friends or loaded down from electronic bulletin boards, 
the peripheral device as long as the switch is activated. can use switch 53 to safeguard his harddrive from corn- 
While this invention can be realized in many configura- 45 puter viruses while at the same time enjoying the indis- 
tions which are familiar to persons practiced in elec- criminate use of programs which come from unknown 
tronics, six principle methods for implementing of this or suspicious origins, 
device are illustrative of the scope of this invention. The _______ __ 

switch may be configured to either EMBODIMENT 2 

1) physically disconnect the power supply to the mass 50 The same ends can be achieved with a slight variation 
storage media device and/or the communication on the power switching method illustrated in FIG. 1. In 
link to the network; this variation of the present invention the switch would 

2) physically disconnect control lines to the mass physically disconnect the control lines to or from the 
storage media device so as to disable all writing peripheral controller. Typically this would involve the 
functions; or 55 ability to disconnect the device select, write select lines, 

3) activate an electronic signal which would electron- or other access signals which the controller uses to 
ically disconnect, block, or buffer control signals to enable access to the peripheral device. When one or 
or from the harddrive and/or network interface so more of these control signals is disconnected, the com- 
as to selectively block write activity to all or part puter would be able to run normally but would not be 
of the harddrive or network. 60 able to write information to the peripheral device. 

4) activate an electronic signal which would be de- 
tected by the peripheral device's controller which 



EMBODIMENT 3 



would then fully or partially disable portions of the A more expensive, but more selective, means of 
peripheral device according to the predetermined achieving the above goals would involve the electronic 
definition associated with that switch. 65 switching of control signals to the peripheral device. 

5) activate an electronic signal which would be de- An example illustrative of this means is shown in FIG. 
tected by the peripheral device's control processor 2. This embodiment of the present invention would 
which would then enable the configuration and allow the user to selectively disable write access to a 
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peripheral device such as a harddrive, while selectively this circuitry could be placed on a separate expansion 

ma in t ainin g the option to read data from the peripheral card as is typically used in personal computers, with the 

device. In addition, this electronic means demonstrates control cable extending from the controller card, which 

two optional features which would aid in the testing of would normally be plugged directly into the peripheral 

software to identify the existence of computer viruses. 5 device, being plugged instead into this separate expan- 

As shown in FIG. 2, switch 21 is used to alter an sion card. Another control cable, including the inter- 
electronic logic level which is logically AND'ed with cepted and buffered control signals, would then extend 
the normal write select signal to the peripheral device, from the separate expansion card, containing the cir- 
such as a harddrive. When switch 21 is in the open cuitry described in this embodiment of the present in- 
position, a logical 1 is generated and the computer has 10 vention, to the peripheral device, 
normal access to the peripheral device. When switch 21 This embodiment of the present invention serves all 
is in the closed position, a logical 0 is generated, the of the above stated purposes but can also be used in 
write select signal is blocked, and the all write access to additional applications. For example, a computer super- 
the peripheral device is inhibited. visor in a business could lock out write access to the 

For the purpose of identifying improper user activity 15 harddrive so that staff can use the programs on the 

or the presence of a computer virus, it may be desirable harddrive but not load unauthorized programs onto the 

to alert the user that a write command was attempted harddrive. Users would be forced to save data files to 

whenever switch 21 is in the closed position. For this unprotected media, such as diskettes. In another appli- 

purpose, the inverted signal from switch 21 is logically cation, an individual can temporarily "quarantine" the 

AND'ed with the write select signal to trigger a retrig- 20 harddrive by making it "read-only" while evaluating 

gerable oneshot logic device, 23, which in turn would new software which may be infected with a computer 

sound the alarm, 24, for a minimum period of time. "virus." 

As an additional option, the oneshot 23 could be 

configured to beep the alarm a single time whenever EMBODIMENT 4 

switch 21 is activated in order to audibly notify the user 25 FIG. 3 represents another embodiment of this inven- 

that the "quarantine" has been initiated. Another alter- tion which is illustrative of the scope of the invention, 

native would be to provide an LED which would re- In this embodiment, the electronics and microcontroll- 

main lit whenever switch 21 is closed in order to pro- ers already present on the peripheral device's controller 

vide a visual indicator to the user that write access to card would directly read and interpret the switches to 

the harddrive is blocked and the "quarantine" is active. 30 carry out the processes disclosed in this invention. This 

Neither of these two options are illustrated in FIG. 2. arrangement is especially beneficial since it adds little or 

Normally, the optional switch 22 in FIG. 2 would be no cost to the consumer and manufacturer, and at the 
left in the open position so that whenever switch 21 is in same time provides the user with increased flexibility in 
the closed position, the computer would have normal controlling access to all or part of the peripheral device, 
read access to the peripheral device but would not be 35 The typical controller card is already capable of in- 
able to write to it However, in some circumstances the terpreting commands from the computer and imple- 
user may wish not only to protect ihe peripheral device menting the appropriate read and write functions to the 
from alteration but also wishes to lock out others from peripheral device. Typically, these actions of interpret- 
examining its contents. Switch 22 is provided for this ing commands and implementing responses are under 
circumstance. If it is desired to configure the electronics 40 the control of a predefined logic circuit or a program- 
to also block read access to the peripheral whenever mable microcontroller which operates a program from 
switch 21 is in the closed position, switch 22 is set to a its fixed memory. In order to implement the present 
closed position. invention most effectively and at least cost, only a slight 

FIG. 2 also illustrates one additional optional feature, modification of the controller card is necessary. This 

namely a feedback write error signal to the computer, 45 modification would involve the addition of one or more 

or the peripheral's controller. In a typical application switches which are read into the controller card's cir- 

where the write select to a harddrive is blocked, the cuitry as additional control or configuration signals, 

computer may think that it is successfully writing data The means for implementing the reading of these 

to the harddrive. This may be a useful feature for trick- switches, and logically combining them to produce the 

ing a computer virus into believing that it is successful 50 desired results in either hardware logic or firmware 

in its write attempts. However, in some applications it programs are standard practices for all electronic and 

may be desirable to alert the computer, and thereby the software designers, therefore no detailed explanation 

user, that write access is being blocked so that they can for the buffering of the switch signals is necessary, 

take corrective measures if necessary. Therefore, if a These switches, may be of a toggle or key locking 

write error signal is desired, the inverse signal from 55 type, or may be implemented as a bank of miniature 

switch 21 can be logically AND'ed with the write select DIP switches in cases where there are a mutiplicity of 

signal to produce a logical 1 whenever a disallowed options to partially disable access to the peripheral, or a 

write attempt is made, which in turn can be logically combination of the above. In the typical application, 

OR'ed with the normal write error signal which is pro- these switches would be in a location easily accessible 

vided from the peripheral device so that the computer 60 to the user on the outside of the computer. These 

or controller will be notified that the write attempt did switches might be advantageously located for accessi- 

not succeed. Other control signals can be similarly con- bility on the front panel of the computer case, near or on 

trolled for similar or varied effects which achieve the the face of the harddrive, for example, or they may be 

same function of protecting data on the harddrive in all placed on the cover plate for the controller card which 

or some locations. 65 fits in an expansion slot, such as is common for IBM- 

The circuitry of this embodiment could be added to compatible computers. Other locations of convenience 

the controller card for the peripheral at little cost dur- would be immediately obvious to computer and periph- 

ing the time of design and manufacture. Alternatively, era! device designers. 
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Activation of these switches would allow the user to tion to the agencies main-frame computers. These pro- 
override the computer's instructions to the controller grams are not needed in the field and so read and write 
card for the peripheral device. For example, a user access to this partition is completely blocked, 
operated switch could be pre-defmed to block all read In addition, switch 32 may be locked into position, 
and write access to all or a portion of the peripheral 5 This causes partition E to temporarily become a write 
device. When this switch is activated, the controller only drive. This may be useful as a means to protect 
logic circuit, or firmware, would ignore any commands sensitive information gathered in the field from being 
coming from the computer to access the restricted por- view or downloaded once it is entered into the system 
tions of the peripheral device. by the auditor. For example, the auditor goes to Busi- 

For the purpose of demonstrating the scope and 10 ness A and conducts his audit using the programs stored 
power of this embodiment of the present invention, an on the '"read-only" partition C. Upon exiting the pro- 
example utilizing several switches to override computer gram, the field data is written to the "write-only" drive 
access to a harddrive is described below and illustrated E. Now, as the auditor goes to Businesses B through J, 
in block form in FIG. 3. this information cannot be retrieved for display or 

In this example, the harddrive is partitioned into 3 15 copying by persons who may gain access to the audi- 
logical drives which are addressed by the computer as tor's computer, since switch 32 has blocked all read 
drives, C, D, and E. Each logical drive represents a attempts to this data. This sensitive information can be 
portion of the physical harddrive which lies between retrieved only upon return to the central agency where 
specified sectors or addresses. For example, logical the project supervisor has the key to disable the "write- 
drive C may include sectors 0 through 1000, drive D 20 only" function caused by switch 32. Only then can the 
sectors 1001 to 2000, and drive E sectors 2001 to 3000. data be read and downloaded into the agencies main- 
When all four switches are in the off position, the con- frame. 

troller card will allow the CPU to have normal, unlim- In addition, the program supervisor may wish to 
ited, read and write access to the harddrive. audit the performance of the auditors, or prevent the 

When switch 30 is activated, the controller card's 25 auditors or other persons from accidentally or mali- 
logic will force it to ignore all write commands to the C ciously overwriting data, erasing data, or reformatting 
partition. This effectively makes the C partition read the harddrive while it is in the field. In this case, switch 
only. When switch 31 is activated, the controller card's 33 can be activated which would make the entire drive, 
logic will ignore all read and write commands to parti- or at least partition E a "write once" drive. Now, a 
tion D. This effectively makes partition D completely 30 history of all data which was written to the drive is 
inaccessible to the CPU. When switch 32 is activated, preserved and can be examined upon return to the cen- 
the controller card blocks all read commands to the E tral agency office. After the information is reviewed 
partition. This effectively makes partition E a write- and downloaded to the agency's main-frame, switches 
only partition, the usefulness of which will be described 33 and 32 can be disabled and partition E can be corn- 
below. Finally, when switch 33 is activated, the con- 35 pletely erased in preparation for the next field audit, 
troller card disables certain normal commands and ena- x2\/rDr\rij\jrc^rr « 

bles new functions. Namely, when switch 33 is acti- UMBUDIMfcN 1 5 

vated the controller card ignores all commands to write Another embodiment of this invention would provide 
over previously written blocks of data. This may in- the peripheral device control processor with a user 
elude blocking out of any format command, and any 40 activated configuration switch. When the switch is 
erase, delete or copy over commands. This would effec- activated, the peripheral device can be configured with 
tively make the entire drive, or selected partitions, a whatever access restrictions are desired. The configura- 
write-once media. This means that once data is written, tion is saved in nonvolatile memory and the switch may 
it cannot be altered as long as switch 33 is active. If a be deactivated. The saving of the configuration infor- 
data file is changed, it must be saved to a new file name 45 mation can take place before or after the switch is deac- 
in a new, unused portion of the partition. tivated. Thereafter, the peripheral device control pro- 

An example of how these functions would be used, cessor will allow the CPU only the accesses for which 
and why they are useful follows. In this example, as- it was previously configured. By repitition of the above 
sume that a government agency is sending out auditors steps, the user can reconfigure the peripheral devices' 
which must record and report sensitive information 50 access limitations as security needs change. Computer 
from a number of private businesses. Each auditor is programmers will immediately recognize many ways to 
supplied a portable computer, with a harddrive, and the implement security software which can employ the 
access restriction switches described above. The audit configuration switch disclosed in this invention. Corn- 
software and a menu system which automatically loads mercial security programs which allow user configura- 
onto the computer whenever the computer is turned on 55 tion, but lack a user accessible configuration switch, 
are loaded by the program supervisor onto partition C include Protec by Sophco, Totalsafe by EhaShim, and 
of each portable computer. Keylock switch 30 is acti- Cetus by FoundationWare. Jones (U.S. Pat. No. 
vated and locked on before the unit is given to the 5,144,659) has provided a detailed flowchart for soft- 
auditors. This effectively guarantees that the auditor ware configuration of a CPU-independent, pro gramma- 
will not be able to load other, unauthorized programs 60 ble security device for harddrives — though again lack- 
onto the partition C thus risking doing damage to the ing the user accessible configuration switch disclosed, 
computer's configuration for its assigned task. herein. Thus, for those skilled in the art, the software 

Also, prior to issuing the portable computers to the implementation of the configuration switch is simple 
auditors, switch 31 is activated to "turn off' partition D, and an obvious two step process: At an appropriate 
which may contain programs and data which are used 65 juncture, prior to allowing reconfiguration of the secu- 
only when the auditor has returned from the field. For rity protocol, 1) read the state of the configuration 
example, such programs may include communication switch, and 2) if it is in the correct state, allow the 
software which is used to download the field informa- configuration process to continue. 
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As an example of this embodiment, assume that a 
harddrive is provided with a key locked configuration 
switch and configuration software. When 'the configu- 
ration software is run, the software checks for a prede- 
termined flaw in the diskette to verify that the operator 5 
has access to the original diskette, a first level of secu- 
rity. A password is required to enter the configuration 
menu, a second level of security. The user is then in- 
structed to activate the key lock using the provided key, 
a third level of security. While the key lock is activated, 10 
a menu is presented whereby the user can make certain 
partitions or sections, subdirectories, or even specific 
files or groups of files such as executable program files, 
either unrestricted, inaccessible, read-only, not-reada- 
ble, write-only, or write-once. After the configuration 15 
has been entered, the menu is exited and the user is 
instructed to deactivate the key lock, remove the key, 
and store the key in a safe location. At a convenient 
juncture suited to the security protocol requirements, 
the configuration parameters are stored in non-volatile 20 
memory or written to a reserved section of the hard- 
drive. Thereafter, whenever the harddrive is powered 
on, the control processor reads the configuration pa- 
rameters into its working memory and restricts the 
CPLPs harddrive access accordingly. If the CPU at- 25 
tempts to access a restricted zone or file, or attempts to 
erase or modify a read-only file, an alarm may sound to 
notify the user of potential virus activities. Once imple- 
mented, these configuration restrictions can be altered 
only by a person with access to the key which activates 30 
the configuration switch and with access to the configu- 
ration software. 

EMBODIMENT 6 

Finally, it should be noted that it is within the scope 35 
of this invention that the peripheral access control 
switches could be electronically sensed by the comput- 
er's own CPU. In this embodiment, the reading of the 
switch would take place at the system's low level BIOS, 
which is the program kernel which controls all input 40 
and output commands between the CPU and the pe- 
ripheral controller cards. At this level, the BIOS code 
would recognize which peripheral access control 
switches are active and execute the appropriate BIOS 
subroutines which would limit the application soft- 45 
ware's access to the peripheral devices according to the 
predefined functions of the activated switches. Since 
the BIOS is typically implemented in firmware, this 
code cannot be altered by a program or programmer 
operating on the computer and so it would be difficult 50 
or impossible to bypass. 

Ramifications, Scope of Invention and Conclusion 

The present invention increases the security options 
available to computer users by introducing a new level 55 
of control over the computer's access to its peripheral 
devices. In the prior art, computers have had a direct 
and unlimited control over their peripheral devices. 
The user's control over the peripherals is implemented 
only through programming of the computer itself. But 60 
since a computer's CPU come under the control of an 
unauthorized user or dangerous programs such as com- 
puter viruses, this unlimited access to the peripheral 
places the authorized users data and programs which 
may be stored on the peripheral device at risk of alter- 65 
ation or deletion. 

The present invention overcomes this inherent weak- 
ness in the prior art by implementing another level of 



10 



user control over the computer. This control occurs 
directly at the mid-point between the computer's CPU 
which operates programs, and the peripheral devices 
which are directed by the CPU to implement programs 
retrieve and store data. Through the introduction of 
peripheral access control switches, this invention dis- 
closes a method by which the authorized user can fully 
or partially limit the computer's access to one or more 
of its peripheral devices. This added level of control 
allows the user to control the computer's activities so 
that access to these peripheral devices is allowed only 
under such conditions as the user feels are secure. 

The method disclosed in this invention produces the 
following advantages: 
it allows the user to temporarily make all or portions 

of a peripheral device completely inaccessible to 

the computer; 
it allows the user to temporarily make all or portions 

of a peripheral device read-only; 
it allow the user to temporarily make all or portions 

of a peripheral device write-once so that important 

data may not be accidentally erased or written 

over; 

it allows the user to temporarily make all or portions 
of a peripheral device write-only so that sensitive 
data may not be read or copied except under autho- 
rized conditions. 

it provides means for alerting the user of unautho- 
rized attempts by the computer to access a secured 
peripheral device which may aid in the detection 
and elimination of computer viruses or other inter- 
lopers. 

Although the description above contains many speci- 
fications and precise examples, these should not be con- 
strued as limiting the scope of the invention but merely 
provide illustrations of some of the principle ways in 
which the invention can be implemented. Once dis- 
closed, customizing of this process to suit an individual 
clients security needs will be obvious to one skilled in 
the art. 

Thus, the foregoing is considered as illustrative of the 
principles of the invention, but is not by any means 
exhaustive. Numerous modifications and changes will 
be obvious to those skilled in the art, especially in the 
definition of each peripheral access control switches 
function. Therefore, it is not desired to limit the inven- 
tion to the exact construction and process shown and 
described herein, and accordingly, all modifications and 
equivalents which utilize a user accessible switch which 
limits a computer's access to its peripheral devices fall 
within the scope of this invention. 

I claim: 

1. A computer security system comprising: 

(a) a computer with a working memory to perform 
program functions; 

(b) at least one computer controlled mass memory 
storage device for storing and retrieving data; 

(c) at least one power supply by which electric power 
is supplied to portions of said computer including 
said at least one computer controlled mass memory 
storage device; 

(d) a user operable hardware switch means between 
at least one of the mass memory storage devices 
and at least one of the power supplies, in which 
user actuation of the hardware switch causes elec- 
tric power from any power supply connected to 
the hardware switch to be disconnected from any 
computer controlled mass memory storage devices 
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connected to the hardware switch, without disrup- 
tion of power to any other portion of said com- 
puter. 

2. The computer security system of claim 1 wherein 
at least one of the computer controlled mass memory 5 
storage devices is a hard disk drive. 

3. A computer security system comprising: 

(a) a computer means with a working memory to 
perform program functions; 

(b) at least one peripheral device; 10 

(c) a control circuit means which is interconnected 
between said computer and said at least one periph- 
eral device, whereby said computer's instructions 
are conveyed to said at least one peripheral device 
for implementation; IS 

(d) at least one user operable switch means, con- 
nected to said control circuit, which when put into 
at least one state causes said control circuit to block 
at least one of said computer's instructions to said 

at least one peripheral device, whereby a user can 20 
prevent said peripheral device from responding to 
unwanted instructions from said computer. 

4. The computer security system of claim 3 wherein 
at least one of the peripheral devices is a hard disk drive. 

5. The computer security system of claim 3, further 25 
including an alarm means attached to said control cir- 
cuit which is activated by said control circuit whenever 

at least one of said computer's instructions to said at 
least one peripheral device is blocked by said control 
circuit 30 

6. The computer security system of claim 3 wherein 
said at least one user operable switch includes a key 
means whereby the state of said at least one user opera- 
ble switch can be altered only by a person using said 
key. 35 

7. A computer security system comprising: 

(a) a computer means with a working memory to 
perform program functions; 

(b) at least one peripheral device; 

(c) a control circuit means which is interconnected 40 
between said computer and said at least one periph- 
eral device, whereby said computer's instructions 
are conveyed to said at least one peripheral device 
for implementation; 

(d) a programmable memory means, attached to said 45 
control circuit, for storing access criteria which 
define at least one restriction on said computer's 
access to said at least one peripheral device; 

(e) at least one user operable switch means, connected 

to said control circuit, which when activated in at 50 
least one state allows user entry of said access crite- 
ria into said programmable memory. 

8. The computer security system of claim 7 wherein 
at least one state of said at least one user operable switch 
means causes said control circuit to block at least one of 55 
said computer's instructions to said at least one periph- 
eral device. 

9. The computer security system of claim 7 wherein 
at least one state of said at least one user operable switch 
means causes said control circuit to activate said at least 60 
one restriction defined in said access criteria for said at 
least one peripheral device. 

10. The computer security system of claim 7, further 
including alarm means attached to said control circuit 
which is activated by said control circuit whenever at 65 
least one of said computer's instructions to said at least 
one peripheral device is blocked by said control circuit. 



11. The computer security system of claim 7 wherein 
said at least one user operable switch includes a key 
means whereby the state of said switch can be altered 
only by a person using said key means. 

12. The computer security system of claim 7 wherein 
at least one of said at least one peripheral devices is a 
computer controlled mass memory storage device. 

13. The computer security system of claim 12 
wherein said computer controlled mass memory storage 
device is a harddrive. 

14. A security method for a computer having at least 
one peripheral device which comprises the steps of: 

(a) interposing a control circuit means having a pro- 
grammable memory and at least one user operable 
switch means between said computer and said at 
least one peripheral device; 

(b) entering into said programmable memory access 
criteria for said peripheral device, where said ac- 
cess criteria define at least one restriction on said 
computer's access to said at least one peripheral 
device; 

(g) allowing access to said control circuit and said 
programmable memory by said computer for ini- 
tialization and modification of said access criteria 
only when said at least one user operable switch is 
activated and disallowing access to said control 
circuit and said programmable memory by said 
computer when said at least one user operable 
switch is deactivated; 

(h) requiring said control circuit to allow said com- 
puter's instructions to be conveyed to said at least 
one peripheral device when said computer's in- 
structions are allowed by said access criteria; and 

(i) requiring said control circuit to block said comput- 
er's instructions to said at least one peripheral de- 
vice when said computer's instructions are not 
allowed by said access criteria. 

15. The method of claim 14 further providing said at 
least one user operable switch with at least one key 
means which limits operation of said at least one user 
operable switch and requiring use of said at least one 
key whenever a user activates said at least one user 
operable switch prior to initialization and modification 
of said access criteria. 

16. The method of claim 14 also allowing keyboard 
entry of a password when said at least one user operable 
switch is activated prior to initialization and modifica- 
tion of said access criteria. 

17. The method of claim 14 also providing an alarm 
means, attached to said control circuit, which is acti- 
vated whenever said control circuit blocks an at- 
tempted unauthorized instruction from said computer 
to said at least one peripheral device. 

18. The method of claim 14 also requiring that at least 
one state of said at least one user operable switch means 
causes said control circuit to block at least one of said 
computer's instructions to said at least one peripheral 
device. 

19. The method of claim 14 also requiring that at least 
one state of said at least one user operable switch means 
causes said control circuit to activate said at least re- 
striction defined in said access criteria for said at least 
one peripheral device. 

20. The method of claim 14 wherein at least one of 
said at least one peripheral devices is a computer con- 
trolled mass memory storage device. 
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